3D Red Pill - A Guest-to-Host Escape on QEMU/KVM Virtio Device
Offered By: Black Hat via YouTube
Course Description
Overview
Explore a groundbreaking guest-to-host escape exploitation technique for QEMU/KVM virtio devices in this 27-minute Black Hat conference talk. Delve into the intricacies of the 3dRedPill exploit as presenters Zhijian Shao, Matthew Shao, Jian Weng, and Yue Zhang demonstrate how it bypasses security measures in virtio-gpu devices. Learn about structure-aware fuzzing, performance analysis, and bug analysis techniques used in developing the exploit. Examine the exploitation process, proposed solutions, memory mapping vulnerabilities, and overwrite techniques. Gain valuable insights into virtualization security and potential mitigation strategies for protecting against such sophisticated attacks.
Syllabus
Introduction
Structure aware fuzzing
Performance analysis
Bug analysis
Exploit
Solution
Memory Mapping
Overwrite
Taught by
Black Hat
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network